GoWork

What we collect

We collect only what we need to run the service. Specifically:

Session content. Your assessment answers (work history, education, criminal-record disclosures, and barriers like transportation, childcare, or housing), your plan checklist updates, and any chat with our barrier-intel assistant. We tie this data to a random session id, not your name.
Advisor notes. If you choose to work with a case manager, the notes they leave on your session.
Email address. Only if you opt into appointment or check-in reminders. We use it to send those emails and nothing else.
Technical metadata. Request timestamps, IP address, and audit rows. Audit rows store a hash of your session id, not the id itself.

Why we collect it

Match you to jobs, training, and benefits in your area.
Generate your resume and cover letter on demand.
Surface benefits-cliff warnings before you accept a job.
Let an advisor follow up if you opted into that flow.
Compliance audit: we keep an immutable record of every export and delete action so we can prove the system honored your data rights.

Who can see it

You. Always. One click on the export action sends you a ZIP of every row tied to your session.
Your case-manager advisor (only if you have one). Advisors are scoped to one city and only see sessions in that city. They cannot search across cities.
Our LLM providers. When we generate a resume or run barrier-intel, we send the relevant text to the language model provider. We strip your session id before sending; the provider sees the content but not which session it belongs to.
Our email vendor (SendGrid). Only your email address and the reminder body. They cannot see your plan, your barriers, or your session.
Nobody else.

Third-party processors

We use a small set of vendors to deliver the service. They process data on our behalf (they are processors, not controllers) and are contractually bound to use it only for the purpose described.

Anthropic (United States) — language-model API for resume generation and barrier-intel chat. Receives anonymized text.
OpenAI (United States) — language-model API (alternate provider). Receives anonymized text.
Google Gemini (United States) — language-model API (alternate provider). Receives anonymized text.
SendGrid (United States) — transactional email delivery. Receives your email address and reminder content only.
BrightData (United States) — job-listing aggregation. Receives generic job-search queries (city, role keywords); no personal data.

Your rights

You have the right to see, correct, and delete the data we hold about you, plus the right to know what we have. Each right has a one-click action in the app:

See your data. Open your Daily Plan and use the export action. We package every row as a ZIP with both a JSON file and a human-readable summary.
Correct your data. Edit your profile and assessment answers any time. Updates take effect immediately.
Delete your data. One click for full delete; a per-section option for partial delete. Full delete cascades through every table that holds your session.
Auto-delete. We automatically purge your data ninety (90) days after your session expires, even if you forget.

Export and delete actions are available from the Daily Plan page.

Children

GoWork is built for adult workers. We do not knowingly collect data from anyone under 13. If you believe a child has used the service, contact us and we will delete the session.

California residents (CCPA)

California residents have the same rights described above (access, correction, deletion). The California Consumer Privacy Act (CCPA) also gives you the right to opt out of the “sale” of personal information. We do not sell your data. To make a do-not-sell request anyway, email the contact below and we will confirm in writing.

Security

Audit logs reference hashed session ids, not raw ids.
Sensitive actions (export, delete, unsubscribe) require signed, single-use tokens with short lifetimes.
We run automated security scans on every deploy and hold an audit trail of every privacy-affecting action.
We scope advisor accounts to a single city and rate-limit cross-session searches.

Changes to this policy

When we change this policy we update the “last updated” date above. Active sessions that have opted into reminders will receive an email summarizing material changes.

Contact

Questions, requests, or complaints: privacy@gowork.example. A production rollout will list a physical postal address per CAN-SPAM § 5(a)(5) and applicable state privacy statutes.

What we collect

We collect only what we need to run the service. Specifically:

Session content. Your assessment answers (work history, education, criminal-record disclosures, and barriers like transportation, childcare, or housing), your plan checklist updates, and any chat with our barrier-intel assistant. We tie this data to a random session id, not your name.

Advisor notes. If you choose to work with a case manager, the notes they leave on your session.

Email address. Only if you opt into appointment or check-in reminders. We use it to send those emails and nothing else.

Technical metadata. Request timestamps, IP address, and audit rows. Audit rows store a hash of your session id, not the id itself.

Why we collect it

Match you to jobs, training, and benefits in your area.

Generate your resume and cover letter on demand.

Surface benefits-cliff warnings before you accept a job.

Let an advisor follow up if you opted into that flow.

Compliance audit: we keep an immutable record of every export and delete action so we can prove the system honored your data rights.

Who can see it

You. Always. One click on the export action sends you a ZIP of every row tied to your session.

Your case-manager advisor (only if you have one). Advisors are scoped to one city and only see sessions in that city. They cannot search across cities.

Our LLM providers. When we generate a resume or run barrier-intel, we send the relevant text to the language model provider. We strip your session id before sending; the provider sees the content but not which session it belongs to.

Our email vendor (SendGrid). Only your email address and the reminder body. They cannot see your plan, your barriers, or your session.

Nobody else.

Third-party processors

We use a small set of vendors to deliver the service. They process data on our behalf (they are processors, not controllers) and are contractually bound to use it only for the purpose described.

Anthropic (United States) — language-model API for resume generation and barrier-intel chat. Receives anonymized text.

OpenAI (United States) — language-model API (alternate provider). Receives anonymized text.

Google Gemini (United States) — language-model API (alternate provider). Receives anonymized text.

SendGrid (United States) — transactional email delivery. Receives your email address and reminder content only.

BrightData (United States) — job-listing aggregation. Receives generic job-search queries (city, role keywords); no personal data.

Your rights

You have the right to see, correct, and delete the data we hold about you, plus the right to know what we have. Each right has a one-click action in the app:

See your data. Open your Daily Plan and use the export action. We package every row as a ZIP with both a JSON file and a human-readable summary.

Correct your data. Edit your profile and assessment answers any time. Updates take effect immediately.

Delete your data. One click for full delete; a per-section option for partial delete. Full delete cascades through every table that holds your session.

Auto-delete. We automatically purge your data ninety (90) days after your session expires, even if you forget.

Export and delete actions are available from the Daily Plan page.

California residents (CCPA)

Security

Audit logs reference hashed session ids, not raw ids.

Sensitive actions (export, delete, unsubscribe) require signed, single-use tokens with short lifetimes.

We run automated security scans on every deploy and hold an audit trail of every privacy-affecting action.

We scope advisor accounts to a single city and rate-limit cross-session searches.

Privacy Policy

What we collect

Why we collect it

Who can see it

Third-party processors

Your rights

Children

California residents (CCPA)

Security

Changes to this policy

Contact

Privacy Policy

What we collect

Why we collect it

Who can see it

Third-party processors

Your rights

Children

California residents (CCPA)

Security

Changes to this policy

Contact